-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
National Cyber Alert System
Technical Cyber Security Alert TA09-041A
Microsoft Updates for Multiple Vulnerabilities
Original release date: February 10, 2009
Last revised: --
Source: US-CERT
Systems Affected
* Microsoft Internet Explorer
* Microsoft Office Visio
* Microsoft Exchange and SQL Server
Overview
Microsoft has released updates that address vulnerabilities in
Microsoft Windows and Windows Server.
I. Description
As part of the Microsoft Security Bulletin Summary for February
2009, Microsoft released updates to address vulnerabilities that
affect Microsoft Windows, Internet Explorer, Exchange Server, SQL
Server, Office, and other related components.
II. Impact
A remote, unauthenticated attacker could gain elevated privileges,
execute arbitrary code or cause a vulnerable application to crash.
III. Solution
Microsoft has provided updates for these vulnerabilities in the
Microsoft Security Bulletin Summary for February 2009. The security
bulletin describes any known issues related to the updates.
Administrators are encouraged to note these issues and test for any
potentially adverse effects. Administrators should consider using
an automated update distribution system such as Windows Server
Update Services (WSUS).
IV. References
* Microsoft Security Bulletin Summary for February 2009 -
<http://www.microsoft.com/technet/security/bulletin/ms09-feb.mspx>
* Microsoft Windows Server Update Services -
<http://technet.microsoft.com/en-us/wsus/default.aspx>
____________________________________________________________________
The most recent version of this document can be found at:
<http://www.us-cert.gov/cas/techalerts/TA09-041A.html>
____________________________________________________________________
Feedback can be directed to US-CERT Technical Staff. Please send
email to <cert@xxxxxxxx> with "TA09-041A Feedback VU#139636" in
the subject.
____________________________________________________________________
For instructions on subscribing to or unsubscribing from this
mailing list, visit <http://www.us-cert.gov/cas/signup.html>.
____________________________________________________________________
Produced 2009 by US-CERT, a government organization.
Terms of use:
<http://www.us-cert.gov/legal.html>
____________________________________________________________________
Revision History
February 10, 2009: Initial release
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iQEVAwUBSZHrgXIHljM+H4irAQJd3Qf+PPj7rh6MdXpVtPwNvjuM/nMisAe2tEpj
Y11YLvM6QK80vZy/DRNnS+TIuClTCb73v7gOpZP6CsuV+4dNQLZ7YMXSnZhpNlO/
Rd5OgaMyd0JvdMppuzvgcsa6IZtDlQPFbjsD0nnIcC8uo97OUI88XUw/V3tpwUvn
sc5jmIfsdNEOb/PGNRujW4pp1OPGVcwH85F5Wzv8KgnDeFecPgU1Wr9xofc0Lbhb
5O253AfQ8ImCWaEZ2P2tIh1Q61HgxROmZ18cFa7IEU2dubNg9WyfFTdSLb0VmqVA
h+GP2y5om5dpgtENkH/gT3INOk3JdIRPaj5uflrPsx/mO/8Cpvl5ow==
=uN2s
-----END PGP SIGNATURE-----
